Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
Atlanta VA Health Care System
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on September 17, 2014. Also cited in 15 other reports.
Report ID: PSETS0000109276, U.S. Department of Veterans Affairs
Reported Entity: DECATUR GA - 508
Issue:
A VA employee requested a copy of his sensitive access log as he felt his ex-girlfriend may have been accessing his VA records without proper authorization. A review of the log identified the ex-girlfriend who is also a VA employee accessed the record without proper authorization and violated the patient privacy rights.
Outcome:
09/18/14: The Incident Resolution Service Team determined that the Veteran will receive a HIPAA letter of notification, since the ex-girlfriend intentionally accessed the record.